Internet security researcher eEye Digital Security has discovered a serious flaw in Symantec’s enterprise anti-virus software.
EEye said hackers could use the flaw to create a self-replicating worm attack against Symantec users’ systems, although Symantec has not so far confirmed the latest vulnerability said to affect its enterprise security systems.
Symantec is still studying the reported threat and is considering whether to issue a security patch for it.
Version 10 and above of Symantec's enterprise anti-virus software is said to be affected. The supplier’s consumer AV products are, however, not said to be affected by the threat.
Last December, a flaw was discovered in Symantec's Antivirus Library that potentially allowed remote attackers to gain control of users’ systems.
And in October, a critical flaw was found in the company's anti-virus scan engine software.